$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa File: 68EAE318D09411EA9D19403FC4F9AE02.roa (raw, json) Hash identifier: zFR7H0I05Qw/TO5ZHqVPc5vZPqDppqV5WtkiH3GvXLs= Subject key identifier: 09:54:AA:50:C0:EB:55:3E:38:45:38:A2:C1:C5:30:A9:B6:25:A3:A9 Certificate issuer: /CN=A91CCDD3/serialNumber=C2E0B583DA40DB6DD833051C0524599E1A5902C6 Certificate serial: 0855 Authority key identifier: C2:E0:B5:83:DA:40:DB:6D:D8:33:05:1C:05:24:59:9E:1A:59:02:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa Signing time: Fri 30 May 2025 21:48:55 +0000 ROA not before: Fri 30 May 2025 21:48:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140947 IP address blocks: 103.153.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.crl rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDD3, serialNumber=C2E0B583DA40DB6DD833051C0524599E1A5902C6 Validity Not Before: May 30 21:48:55 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=683a27c7-dfb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:22:29:1c:74:de:6b:2b:88:e9:32:d5:dc:7c: 4a:5f:58:9b:9c:ec:b5:7e:8e:db:4d:f0:a9:9c:d0: c4:72:77:1b:b9:36:df:4c:28:ca:1c:47:f4:fc:11: 8b:02:ae:6e:2a:03:60:b7:10:e0:0a:f8:7f:e2:cd: 36:94:d5:b7:1b:a0:c5:46:ad:f3:ae:fd:0b:10:25: 41:91:fe:97:54:55:61:02:c4:8e:31:11:05:88:61: 17:4e:d7:ea:ac:23:ca:07:cf:bd:92:95:6d:53:d8: dd:ca:1e:e5:16:48:33:42:e3:12:ca:b5:b9:7c:31: b1:99:b5:10:5b:e3:41:a7:bb:14:1a:ba:91:2e:bc: 27:9b:0f:fd:3f:c6:49:6c:8f:1f:4e:e4:4b:b9:36: 88:de:61:f2:04:b6:a1:35:8a:28:aa:a9:7e:71:bc: d1:16:f4:bf:76:ae:97:21:c0:7c:02:a9:fa:c1:3a: d8:58:32:19:28:2f:3b:f2:6c:8a:a1:bf:ca:1f:61: 7a:e3:9b:a8:12:57:72:1b:61:e5:2a:ec:bf:32:7f: 7a:4f:64:df:4a:d2:7a:40:98:0a:3a:d3:ca:fe:bc: 3a:09:38:cc:25:33:f1:b2:80:9d:86:0b:33:2a:87: 0d:70:db:b8:32:66:48:6e:f3:3a:4e:0c:d4:16:19: d2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:54:AA:50:C0:EB:55:3E:38:45:38:A2:C1:C5:30:A9:B6:25:A3:A9 X509v3 Authority Key Identifier: keyid:C2:E0:B5:83:DA:40:DB:6D:D8:33:05:1C:05:24:59:9E:1A:59:02:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/wuC1g9pA223YMwUcBSRZnhpZAsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wuC1g9pA223YMwUcBSRZnhpZAsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDD3/0D715032D09211EAA5712A3CC4F9AE02/68EAE318D09411EA9D19403FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.182.0/23 Signature Algorithm: sha256WithRSAEncryption 80:5c:e7:1f:d1:51:01:8b:42:01:3a:0f:1c:f3:2a:dc:a8:a9: f9:ba:80:e2:5c:24:7b:eb:62:d3:6a:a7:b7:04:88:87:6b:21: cd:b9:b9:59:1e:c6:89:34:0b:f6:d4:c0:80:7b:da:af:e7:a4: d0:80:74:f7:59:de:c6:9c:37:9c:66:53:79:b8:2b:cc:3a:0f: 03:5c:6c:f1:f9:21:a0:a6:dd:fe:e4:e8:2c:b8:10:c5:65:b8: fa:e9:f0:d1:d6:c4:42:63:d5:41:ea:b6:63:2e:88:de:ba:15: f6:4a:05:0a:e3:43:6f:30:83:bf:b8:6d:bf:78:06:60:ba:34: 20:b6:78:b4:00:2e:9d:19:a0:45:3c:90:42:40:bb:1a:e2:c8: 53:86:94:b8:cd:87:7d:f5:a0:a5:7e:df:0f:d1:36:43:fa:6a: 77:71:e2:94:61:fa:57:78:62:f9:20:9e:bd:c2:79:f8:6a:07: 2b:4f:de:62:b6:f5:f0:26:dd:21:63:d4:f3:b7:f4:c1:49:96: a1:51:e3:33:75:69:28:5d:65:71:d6:7e:7a:0b:4e:57:a3:0f: b2:90:ad:30:4e:3f:97:d2:c0:5a:63:0f:6d:4c:4c:fc:16:9d: e9:b0:9b:d8:32:c7:ce:9b:f2:90:0b:a7:40:7d:2f:5b:73:d6: 01:51:2c:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NERDMxMTAvBgNVBAUTKEMyRTBCNTgzREE0MERCNkREODMzMDUxQzA1MjQ1OTlF MUE1OTAyQzYwHhcNMjUwNTMwMjE0ODU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMjdjNy1kZmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSIpHHTeayuI6TLV3HxKX1ibnOy1fo7bTfCpnNDEcncbuTbfTCjKHEf0/BGL Aq5uKgNgtxDgCvh/4s02lNW3G6DFRq3zrv0LECVBkf6XVFVhAsSOMREFiGEXTtfq rCPKB8+9kpVtU9jdyh7lFkgzQuMSyrW5fDGxmbUQW+NBp7sUGrqRLrwnmw/9P8ZJ bI8fTuRLuTaI3mHyBLahNYooqql+cbzRFvS/dq6XIcB8Aqn6wTrYWDIZKC878myK ob/KH2F645uoEldyG2HlKuy/Mn96T2TfStJ6QJgKOtPK/rw6CTjMJTPxsoCdhgsz KocNcNu4MmZIbvM6TgzUFhnS9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAlUqlDA 61U+OEU4osHFMKm2JaOpMB8GA1UdIwQYMBaAFMLgtYPaQNtt2DMFHAUkWZ4aWQLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0REMy8wRDcxNTAzMkQw OTIxMUVBQTU3MTJBM0NDNEY5QUUwMi93dUMxZzlwQTIyM1lNd1VjQlNSWm5ocFpB c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d1QzFnOXBBMjIzWU13VWNCU1JabmhwWkFzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NERDMvMEQ3MTUwMzJEMDkyMTFFQUE1NzEyQTNDQzRGOUFFMDIvNjhFQUUzMThE MDk0MTFFQTlEMTk0MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmbYwDQYJKoZIhvcNAQELBQADggEBAIBc5x/RUQGLQgE6 DxzzKtyoqfm6gOJcJHvrYtNqp7cEiIdrIc25uVkexok0C/bUwIB72q/npNCAdPdZ 3sacN5xmU3m4K8w6DwNcbPH5IaCm3f7k6Cy4EMVluPrp8NHWxEJj1UHqtmMuiN66 FfZKBQrjQ28wg7+4bb94BmC6NCC2eLQALp0ZoEU8kEJAuxriyFOGlLjNh331oKV+ 3w/RNkP6andx4pRh+ld4Yvkgnr3CefhqBytP3mK29fAm3SFj1PO39MFJlqFR4zN1 aShdZXHWfnoLTlejD7KQrTBOP5fSwFpjD21MTPwWnemwm9gyx86b8pALp0B9L1tz 1gFRLD4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:53 2025 by rpki-client